SOC 2 Type 2 Compliant

SOC 2 Type 2 compliant for security, availability and confidentiality

With a SOC 2 Type 2 report, Finpace adheres to on of the most stringent auditing standards for service companies. Clients get additional assurance(s) through independent auditors, that Finpace's process, information technology and risk management/compliance controls are properly designed. SOC 2 audit reports focus on service organization's non-financial reporting controls as they relate to Security, Availability, Confidentiality, Processing Integrity and Privacy of a system.

Certified AWS Data Centers

ISO 27001 certified with SOC 1, 2 and 3 reports

Finpace relies on the power of AWS data centers, the leader in cloud security. AWS data centers are physically secure with restricted access via keycards, pin codes and biometric measures. Onsite security officers monitor facilities 24 hours per day, 365 days a year.

Finpace deploys automatic encrypted hourly backups online. We store all information in multiple data centers strategically located in different areas of the country.

Data Encryption

256-bit Data Encryption, in transit and rest

All of Finpace's connections are secured using TLS 1.2 with a 256-bit symmetric encryption and 2048-bit authenticated key agreement. We mask passwords with a separate salt and encrypt with Bcrypt and enforce minimums for length and complexity, ensuring extreme hacker defense. Data at AWS data centers remains encrypted using 256-bit AES.

Single-Sign-On (SSO)

Easy, secure identity management for organizations

With Single-Sign-On (SSO) using the SAML 2.0 standard, you can securely and easily sign into other applications while using Finpace, like Schwab for example. Users can be added and removed easily and company-wide password policies can be enforced for all of your business applications. SSO removes the need for users to manage multiple passwords.

Access Control

Granular permission settings provide complete access control

Finpace users at the "Admin" level are the only users with permission to invite others to the data repository. Administrators also have the ability to set specific limits for such invited users.

Audit Trail

Full visibility on who's doing what in your account

Administrators have high visibility into what authorized users are doing within their Finpace account. Every action taken by all users are time-stamped for compliance and security purposes. Finpace makes it easy for administrators within a firm, such as compliance officers, to ensure that users are keeping the firm safe and compliant at all times.

Authentication

Additional layers of security to protect you

Finpace uses multi-factor authentication as a simple yet highly effective protection against cyber security attacks. The application requires users to input additional identifying information in order to access secure portals that store sensitive data.

SMS Authentication

Finpace uses an ever-changing, user-specific 6 digit code, that is sent to the registered phone number and is needed for access of secure data. Finpace's 2FA works worldwide.

Finpace upgrades your practice with military-grade data security

Protect your client's data at the highest level
Reduce compliance risk by quickly and safely identifying your clients
Easily keep clients up-to-date with Finpace's secure client portals

Want to talk to a human?